VDB

GCVE-110-MAGEIA-2016-97

GCVE-110-MAGEIA-2016-97
Advisory Published
Vulnetix · Advisory published March 7, 2016
Updated graphite2 packages fix security vulnerabilities: Multiple security flaws were found in the graphite2 font library. A web page or document containing malicious content could cause an application using graphite2 to crash or, potentially, execute arbitrary code with the privileges of the user running the application (CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802). The graphite2 package has been updated to version 1.3.6 which fixes these security issues.

Affected Products

VendorProductVersionsPlatforms
Mageiagraphite21.3.6-1.mga5 (unaffected), 0 (affected), 1.3.6-1.mga5 (unaffected), 0 (affected)
Mageiapython-gitpython0 (affected), 0.3.1-9.1.mga5 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›